Wait! Don't Leave Without Securing Your Site
Get enterprise - grade SSL certificates at a fraction of retail prices.
Save 10% on your first order, by entering coupon code SAVE10 during checkout.
FAQs
All
Business Validation
Certificate Authorities
Changes
Code Signing
Configuration
CPAC
CSR Code
CSR Decoder
CSR Generation Tutorials
CSR Generator
DigiCert
Domain Validation
Extended Validation
General
Install SSL Certificates
Installation
IP Address
LEI
Multi Domain
Payments
Private Key
Renewal
S/MIME
Types
Updates
Wildcard
Can I secure an IP address with an SSL Certificate?
Yes, you can secure an IP address with an SSL Certificate. However, only some specific SSL Certificates will allow you to do that. Here are those SSL Certificates:
– Sectigo InstantSSL Premium
– GoGetSSL Public IP SAN
Please note that the Sectigo InstantSSL Premium is a Business Validation SSL Certificate, which means that you need to have a registered company in order to be issued this SSL certificate.
GeGetSSL Public IP SAN is a Domain Validation SSL Certificate which secures 2 IP addresses by default.
Copy Link
Can I secure site.com and www.site.com under 1 SAN?
When you buy or configure your Multi-Domain (SAN) SSL Certificate, please note that most Multi-Domain Certificates do not secure the domains with and without “www”. With other words if you want to secure both, example.com and www.example.com under one single Multi-Domain Certificate, that will be considered as two different domain names. The screenshot on the right shows you where you can find the attribute that tells you if your Multi-Domain Certificate secures both “www” and “non-www” under one single domain (SAN), or not.
Anyway, that is not a problem so as you cannot have the same website open both as www.example.com and as example.com. All website owners only choose one of these options and make the other option automatically re-direct to the other. For example, you can choose your website to always open at www.example.com and anybody who enters on example.com is automatically redirected to www.example.com. In this way, you only have to secure one domain, and that is: www.example.com.
Copy Link
How to change the domain validation method?
Valid only for Sectigo and GoGetSSL Certificates:
Please go through the next steps in order to change the domain validation type for your SSL Certificate:
- Log into your SSL Dragon account;
- Go to “SSL Certificates” -> “My SSL Certificates“;
- You will see the list of products that you bought from SSL Dragon. Click on the SSL Certificate which you would like to change the domain validation type for;
- Click on the “Change DV Method” button which you can find towards the bottom on the page;
- Choose the new domain validation method for your domain(s); You can read more about what each validation type means at this link; (Important: HTTP validation method is no longer available for Wildcard SSL Certificates).
- Click “Submit” to make the new validation method go into effect.
Copy Link
How to configure an SSL Certificate?
- Sign in to “My Account” on our SSL Dragon website;
- Once you are logged in, go to the main menu, select “SSL Certificates” -> “My SSL Certificates“;
- You will see the list of SSL Certificates which you bought on our website. Click on the SSL Certificate which you have just ordered, to enter its details page;
- When you are on the details page of the SSL certificate which you bought, go towards the bottom of the page, and click on the green button which says “Configure Now”;
- Fill in the form, by entering your order type, web server type, CSR and your company information;
- The second thing that you will be asked about on this form is the CSR (Certificate Signing Request). Insert your CSR (if you already have one), or use our CSR Generator tool to generate your CSR and your Private Key, based on the information which you will introduce in the CSR form. Copy and paste your CSR code in the text area which asks you for your CSR.
Important: Please make sure to insert the entire CSR code, including the following two lines:
—–BEGIN CERTIFICATE REQUEST—–
(your CSR code)
—–END CERTIFICATE REQUEST—– - Only for Multi-Domain SSL: In the SANs Field, insert your additional domain name list, space-separated, e.g.:
yourdomain.com
yourseconddomain.com
- Once the form is completed in full, click on “Click to Continue”;
- You’ll be redirected to the domain validation page, where you need to choose your Domain Validation Method (email, HTTP/HTTPS, or DNS) then click on “Click to Continue”;
- The configuration of your SSL Certificate is completed now, and your order will be submitted to the Certificate Authority. If you have a Business Validation, Organization Validation, or Extended Validation SSL Certificate, you will find directions to the next steps on this page.
Copy Link
How to convert my SSL Certificate into a different format?
Some servers and hosting companies may require you to submit your SSL Certificate in a different format than the original format in which your SSL Certificate was provided to you. Here are some links with instructions on how to convert an SSL Certificate to different file formats:
CRT to PFX format conversion
1. Get PFX from CRT and txt containing private key for Azure
2. Bind an existing custom SSL certificate to Azure Web Apps
3. Exporting the SSL Certificate as a PFX file from IIS server
4. Convert your certificate to PFX
Convert .CRT to.CER file
It is easy to switch from .CRT format to .CER format. They are basically interchangeable. You can change the SSL Certificate extension/format by going with the steps written below:
- Copy and paste the CRT code which you got from your SSL Certificate’s details page in your SSL Dragon account and use Notepad to create a mywebsite.crt file from it;
- Double click on the mywebsite.crt file to open it and see the certificate being displayed;
- Click on the “Details” button, and then click on the button that says “Copy to File”;
- When you are on the Certificate Wizard, click “Next”;
- Then select Base-64 encoded X.509 (.CER), then click “Next” again;
- Click on “Browse” to choose the location where you want to save the converted file, and enter the desired name for your file (e.g.: mywebsite.cer);
- Finally, click “Save”, and you will have the .CRT to .CER conversion complete;
- You can get the mywebsite.cer file from the folder where you selected to save it to.
Copy Link
How CPAC SSL Certificates digitally sign your documents?
Sectigo Personal Authentication Certificate lets you easily sign any valuable and critical personal or company document, therefore ensuring compliance with industry requirements of digitally signed documents. By digitally signing the document, you identify yourself as the authentic document signer and certify its integrity by proving that your document hasn’t been altered since it was signed. In this way, CPAC SSL Certificates help you migrate from ink & paper to digital workflows of contracts, sign-offs, request forms and other important company documents, working in tandem with or replacing the visible signature feature in Microsoft® products such as Microsoft Office Suite, Open Office Suite, VBA Macros and more.
Copy Link
Do I need an SSL certificate for my website?
You have to purchase an SSL certificate if your website contains logins or web forms that require personal or credit card information from your customers. The SSL certificate will secure the personal data shared on your website and will make your clients feel safer while performing transactions, knowing that any information shared is within a secure environment and authenticated by a trusted Certificate Authority.
If you have an informative website, we still recommend you to purchase an SSL certificate. By having an HTTPS link, your website will be more trustworthy.
Copy Link
Why is domain validation for multi-domain SSL so slow?
When you buy a multi-domain SSL Certificate and you include several domain names and/or sub-domains in it, the Certificate Authorities require you to pass the domain validation for each and every domain name and/or sub-domain that you included in your multi-domain SSL Certificate, and only after that, the multi-domain SSL Certificate will be issued to you.
POSSIBLE PROBLEM: Sometimes the email addresses, or your HTTP options, or the DNS records that you choose for your multi-domain certificate do not get set correctly when they reach the Certificate Authority. You will know that when you see that you only got one single domain validation message to your email address instead of getting several domain validation messages, or your multi-domain SSL Certificate’s status still shows as “Awaiting Validation (Full)” even though you passed the domain validation for one of the domains.
HOW TO FIX: There is an easy way to fix that, and that requires getting in contact with the Certificate Authority’s Validation Department. When you contact them, please provide them your “Partner Order ID” (see screenshot on the right), and then tell them about the domain validation method that you chose to go with: HTTP, DNS, or Email. If you chose to pass the domains validation by email, then double-check with the Validation Department representatives what email addresses are set in their system, and ask them to send you the domain validation messages to your desired email addresses.
Sectigo/GoGetSSL
Please call Sectigo Validation Department at +1 (888) 266-6361 or https://sectigo.com/support for the above-stated reasons. When you talk to them, you will need to provide them your “Partner Order ID”.
Thawte, GeoTrust, DigiCert
Please call Thawte, GeoTrust, DigiCert Validation Department at +1 (877) 438-8776 for the above-stated reasons. Please note that Thawte, GeoTrust, DigiCert are all owned by DigiCert, and they all have the same phone number provided above. When you talk to them, you will need to provide the “Partner Order ID”.
Copy Link
Which EV certificates have the quickest validation?
EV SSL Certificates issued by GeoTrust, Thawte, and DigiCert have a quicker and easier Extended Validation process compared to those issued by Sectigo.
With GeoTrust, Thawte, and DigiCert, the Certificate Authority does most of the company validation process all by itself, and in rare cases requires the customers to provide additional information and legal letters signed by a notary, certified public accountant, or an attorney.
On the other side, Sectigo relies a lot on the customer to provide all the information about his/her company, as well as updating the company’s DUNS listing (on the Dun & Bradstreet website) and providing legal letters signed by a notary, a certified public accountant, or an attorney.
You can read what the Extended Validation process with these different brands consists of at this link.
Copy Link
How do I find the date when my SSL Certificate expires?
You need to go to your SSL Dragon account and check the “Expires” field for the SSL Certificates that you have with us. You can do that by following the next steps:
1) Log into your SSL Dragon account at: https://my.ssldragon.com/
2) Go to “SSL Certificates” -> “My SSL Certificates“;
3) You will see the list of SSL Certificates which you bought from us;
4) Click on the necessary SSL Certificate;
5) Find its “Expires” field on the SSL Certificate’s details page.
You may start the renewal process within 30 days before the “Expires” date by clicking on the “Renew” button.
Your new SSL Certificate will be connected with the old one. All remaining days from the previous SSL Certificate will be added to the new one.
Copy Link